Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/K2vQOhE-7YqBr51NIKLuycf1ILE.roa
File: K2vQOhE-7YqBr51NIKLuycf1ILE.roa (raw, json)
Hash identifier: H7RXGBFav9CRYSIQaOqnAi7yjXrM5jky6CnGRvOSMCM=
Subject key identifier: 2B:6B:D0:3A:11:3E:ED:8A:81:AF:9D:4D:20:A2:EE:C9:C7:F5:20:B1
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 019054EFC7071DBE89314B7F8FE89915581F
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/K2vQOhE-7YqBr51NIKLuycf1ILE.roa
Signing time: Wed 26 Jun 2024 14:25:18 +0000
ROA not before: Wed 26 Jun 2024 14:25:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8888
IP address blocks: 45.14.105.0/24 maxlen: 32
45.14.107.0/24 maxlen: 32
45.87.92.0/22 maxlen: 32
45.87.92.0/24 maxlen: 32
45.87.93.0/24 maxlen: 32
45.87.95.0/24 maxlen: 32
45.90.210.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
45.131.152.0/22 maxlen: 24
45.135.40.0/22 maxlen: 32
45.139.192.0/22 maxlen: 24
45.139.192.0/24 maxlen: 32
45.139.195.0/24 maxlen: 32
45.143.232.0/22 maxlen: 24
45.143.233.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
45.143.235.0/24 maxlen: 24
80.66.196.0/22 maxlen: 24
92.118.188.0/24 maxlen: 32
94.124.116.0/22 maxlen: 24
95.214.164.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
185.194.52.0/22 maxlen: 24
185.194.54.0/24 maxlen: 32
185.200.64.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
185.248.87.0/24 maxlen: 32
193.111.30.0/23 maxlen: 24
194.36.24.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
194.169.54.0/24 maxlen: 24
195.245.219.0/24 maxlen: 32
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
2a06:4fc0::/29 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a09:0:15::/48 maxlen: 48
2a09:6::/48 maxlen: 48
2a09:6:1::/48 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 30 Aug 2024 15:43:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:ef:c7:07:1d:be:89:31:4b:7f:8f:e8:99:15:58:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jun 26 14:25:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b6bd03a113eed8a81af9d4d20a2eec9c7f520b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2e:13:27:e4:78:23:bb:a9:e0:40:f7:cf:32:
aa:79:69:65:28:ae:0c:c2:2d:e6:b8:8a:6c:98:33:
07:42:46:dd:26:3b:a2:e7:f2:21:a8:b8:db:60:59:
f4:00:bd:e1:01:a1:f3:d3:78:ea:65:7a:46:c2:6f:
e1:21:a5:8f:bd:f3:c7:f7:07:ae:ad:b3:84:18:13:
5b:e9:6e:e2:9e:2a:e0:50:ce:21:ec:c6:1d:9e:ab:
e4:ea:b0:55:8a:93:2d:32:f3:8d:e0:e5:16:11:9d:
9f:2c:32:cc:99:b4:7a:24:24:0d:42:d2:81:14:5d:
de:b3:5a:83:cb:e6:8e:8e:09:9e:4d:f1:ce:1b:59:
90:09:00:e5:0c:34:2e:4d:7d:a5:40:ee:95:02:83:
df:d3:98:7d:1f:28:a3:6b:ce:9a:be:2a:c9:8c:6f:
2a:a1:59:26:20:32:a2:fa:1a:f4:ba:97:a5:aa:75:
81:8f:96:ad:2d:92:2b:e9:26:eb:1d:57:2f:12:1e:
43:69:6d:c3:0d:d2:9b:1c:2b:a2:c3:44:d5:b5:c7:
f8:e8:89:6d:85:cb:3b:fc:07:74:89:2c:08:de:ee:
44:a2:3d:ab:72:42:fa:10:8d:c2:bb:42:19:4d:36:
07:3a:1a:ec:a3:61:91:64:42:12:e2:ae:7b:72:59:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6B:D0:3A:11:3E:ED:8A:81:AF:9D:4D:20:A2:EE:C9:C7:F5:20:B1
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/K2vQOhE-7YqBr51NIKLuycf1ILE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.105.0/24
45.14.107.0/24
45.87.92.0/22
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.135.40.0/22
45.139.192.0/22
45.143.232.0/22
80.66.196.0/22
92.118.188.0/24
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
185.248.87.0/24
193.111.30.0/23
194.36.24.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09:0:15::/48
2a09:6::/47
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
5b:9d:5e:68:68:49:bd:bd:71:d2:92:a8:66:57:75:97:50:8c:
c0:c0:c3:a8:fb:e8:77:a8:d9:3f:99:c5:ec:9f:dc:c1:4c:22:
e9:f1:0e:cf:f4:e9:ed:2a:2c:29:a5:54:38:35:8d:69:3f:aa:
54:4c:81:fb:c2:cc:dd:42:43:6c:77:08:65:5b:c2:22:5e:d3:
da:6d:23:8c:e5:25:63:7c:42:94:1e:74:74:37:54:e0:11:79:
77:ad:d4:34:bf:f9:0d:9a:2a:3d:63:ca:28:de:9b:a0:50:97:
e4:49:52:32:e2:5b:b8:ac:3a:54:84:e7:a3:a9:3a:89:96:e5:
5b:49:4d:3d:88:37:19:28:c6:13:89:34:e6:5e:99:8e:0a:a1:
62:9b:95:6c:fd:f0:23:5e:c0:51:f8:43:4c:35:b6:e7:ae:15:
02:06:9c:84:c2:18:56:e1:16:19:e5:1a:14:ad:d5:fb:43:e9:
dd:48:10:8e:28:0a:ee:61:34:44:71:63:c9:40:4a:e8:0d:6d:
d8:b1:89:ff:95:d3:4d:7c:c8:2d:8d:d6:e1:0c:f2:b6:be:ee:
bf:c3:37:ed:8f:d1:01:f7:86:22:7c:77:ba:28:7a:8e:c7:e3:
ec:77:5e:00:d8:69:b0:67:83:1e:04:04:25:5f:61:2b:a3:f7:
c5:72:91:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 17:28:47 2024 by rpki-client on console-fra.rpki-client.org